Assessing software integrity of virtual appliances through software whitelists: Is it any good?

Jun Ho Huh, Mirko Montanari, Derek Dagit, Rakesh B. Bobba, Dong Wook Kim, Roy H. Campbell, Yoonjoo Choi

Research output: Contribution to conferencePaperpeer-review

Abstract

Virtual appliances (VAs) are ready-to-use virtual machine images that are configured for specific purposes in Infrastructure-as-a-Service (IaaS) clouds. This paper evaluates the integrity of software packages installed on real-world VAs through the use of a software whitelist-based framework. Analysis of 151 Amazon VAs using this framework shows that there is significant variance in the software integrity across VAs and that about 9% of real-world VAs have significant numbers of software packages that contain unknown files, making them potentially untrusted. Virus scanners flagged just half of the VAs in that 9% as malicious, though, demonstrating that virus scanning alone is not sufficient to help users select a trustable VA.

Original languageEnglish (US)
StatePublished - 2013
Event20th Annual Network and Distributed System Security Symposium, NDSS 2013 - San Diego, United States
Duration: Feb 24 2013Feb 27 2013

Conference

Conference20th Annual Network and Distributed System Security Symposium, NDSS 2013
Country/TerritoryUnited States
CitySan Diego
Period2/24/132/27/13

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Control and Systems Engineering
  • Safety, Risk, Reliability and Quality

Fingerprint

Dive into the research topics of 'Assessing software integrity of virtual appliances through software whitelists: Is it any good?'. Together they form a unique fingerprint.

Cite this